docker.io/xhofe/alist:v3.40.0 linux/amd64

docker.io/xhofe/alist:v3.40.0 - Trivy安全扫描结果扫描时间: 2024-11-22 19:21

全部漏洞信息

低危漏洞:2

中危漏洞:2

高危漏洞:0

严重漏洞:0

系统OS: alpine 3.21.0_alpha20240807 扫描引擎: Trivy 扫描时间: 2024-11-22 19:21

docker.io/xhofe/alist:v3.40.0 (alpine 3.21.0_alpha20240807) (alpine)

低危漏洞:0

中危漏洞:0

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息

opt/alist/alist (gobinary)

低危漏洞:2

中危漏洞:2

高危漏洞:0

严重漏洞:0

软件包	漏洞	安全状态	安装版本	修复版本	漏洞信息
github.com/rclone/rclone	CVE-2024-52522	中危	v1.67.0	1.68.2	rclone: librclone: improper permission and ownership handling on symlink targets with --links and --metadata 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-52522 镜像层: sha256:b4a5919c2bcb24b0d502686da066764f028bb45763292e5123a73a5f2cc875ac 发布日期: 2024-11-15 18:15 修改: 2024-11-18 17:11
gopkg.in/square/go-jose.v2	CVE-2024-28180	中危	v2.6.0		jose-go: improper handling of highly compressed data 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-28180 镜像层: sha256:b4a5919c2bcb24b0d502686da066764f028bb45763292e5123a73a5f2cc875ac 发布日期: 2024-03-09 01:15 修改: 2024-06-12 02:15
github.com/disintegration/imaging	CVE-2023-36308	低危	v1.6.2		disintegration Imaging 1.6.2 allows attackers to cause a panic (becaus ... 漏洞详情: https://avd.aquasec.com/nvd/cve-2023-36308 镜像层: sha256:b4a5919c2bcb24b0d502686da066764f028bb45763292e5123a73a5f2cc875ac 发布日期: 2023-09-05 04:15 修改: 2024-08-02 17:16
github.com/golang-jwt/jwt/v4	CVE-2024-51744	低危	v4.5.0	4.5.1	golang-jwt: Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt 漏洞详情: https://avd.aquasec.com/nvd/cve-2024-51744 镜像层: sha256:b4a5919c2bcb24b0d502686da066764f028bb45763292e5123a73a5f2cc875ac 发布日期: 2024-11-04 22:15 修改: 2024-11-05 16:04